Lucene search

Mambo Cms Security Vulnerabilities

cve

CVE-2011-2917

SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the zorder...

8.7AI Score

0.002EPSS

2022-10-03 04:15 PM

cve

CVE-2011-2499

Mambo CMS through 4.6.5 has multiple...

6.1CVSS

6.3AI Score

0.001EPSS

2020-02-12 08:15 PM

cve

CVE-2013-2565

A vulnerability in Mambo CMS v4.6.5 where the scripts thumbs.php, editorFrame.php, editor.php, images.php, manager.php discloses the root path of the...

5.3CVSS

5.3AI Score

0.001EPSS

2019-02-15 09:29 PM

cve

CVE-2013-2564

Mambo CMS 4.6.5 allows remote attackers to cause a denial of service (memory and bandwidth consumption) by uploading a crafted...

5.2AI Score

0.008EPSS

2014-06-09 07:55 PM

cve

CVE-2013-2563

Mambo CMS 4.6.5 uses world-readable permissions on configuration.php, which allows local users to obtain the admin password hash by reading the...

5.2AI Score

0.0004EPSS

2014-06-09 07:55 PM

cve

CVE-2013-2562

Mambo CMS 4.6.5 stores the MySQL database password in cleartext in the document root, which allows local users to obtain sensitive information via unspecified...

4.9AI Score

0.0004EPSS

2014-06-09 07:55 PM

cve

CVE-2007-4203

Session fixation vulnerability in Mambo 4.6.2 CMS allows remote attackers to hijack web sessions by setting the Cookie...

6.7AI Score

0.011EPSS

2007-08-08 01:17 AM